$ rpki-client -vvf rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/D3D1604C2B6711EC8CD1C61FC4F9AE02.roa File: D3D1604C2B6711EC8CD1C61FC4F9AE02.roa (raw, json) Hash identifier: FY6mKfRkayQzRckcSJnAaWBwktUHix8YTyWPw31OktI= Subject key identifier: 87:6D:F3:BA:81:77:34:1A:CE:DB:36:03:3E:F5:E9:99:2A:4D:24:68 Certificate issuer: /CN=A917AFE7/serialNumber=DCC07A9D8FFE378DDDAF3CD0E41A9EF6FDD3148F Certificate serial: 03C4 Authority key identifier: DC:C0:7A:9D:8F:FE:37:8D:DD:AF:3C:D0:E4:1A:9E:F6:FD:D3:14:8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MB6nY_-N43drzzQ5Bqe9v3TFI8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/D3D1604C2B6711EC8CD1C61FC4F9AE02.roa Signing time: Sat 13 Jan 2024 01:52:43 +0000 ROA not before: Sat 13 Jan 2024 01:52:43 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 139814 IP address blocks: 103.145.164.0/23 maxlen: 23 103.145.164.0/24 maxlen: 24 103.145.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.crl rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MB6nY_-N43drzzQ5Bqe9v3TFI8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 964 (0x3c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AFE7/serialNumber=DCC07A9D8FFE378DDDAF3CD0E41A9EF6FDD3148F Validity Not Before: Jan 13 01:52:43 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65a1eceb-2346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:06:9a:c8:7c:c1:8d:54:d7:92:50:5e:60:d2: 87:18:14:35:b8:72:5b:c3:18:c0:3e:82:dc:39:69: cb:a9:28:04:2c:7c:53:82:11:90:8e:d7:d5:23:28: 96:e2:f3:68:9a:d4:f7:f7:6c:02:ef:95:5a:d0:53: 94:26:8c:98:fb:9a:fb:73:bd:52:a3:2b:50:16:70: 06:f2:52:a7:61:7d:45:51:e3:43:35:2d:28:49:ee: e7:17:ec:2a:f8:be:82:34:fa:50:3f:12:bd:b0:db: a5:98:68:56:e7:94:35:5a:41:31:de:0b:0a:54:b5: 19:41:5d:33:91:a1:9c:66:1b:4a:b7:cc:96:e6:a5: 5b:a9:45:02:1a:c0:e8:37:a8:56:16:64:75:ba:da: 53:74:01:d2:d4:1b:5a:35:b1:97:b7:2c:d9:40:28: 29:a1:e9:45:7e:f7:f7:c5:1b:e9:31:1f:19:c4:ae: 03:71:6a:b5:f7:19:18:04:a7:43:82:fc:8a:a8:0c: 77:85:fe:92:40:be:74:5e:3b:ca:74:c8:08:63:c5: 72:00:4e:48:ff:38:70:97:06:9b:77:1b:e0:60:32: 4e:d8:13:ea:f0:03:85:cf:80:71:f9:2b:42:d4:cd: ed:ec:12:d1:17:38:d7:05:1c:5f:5e:69:07:30:6c: e7:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:6D:F3:BA:81:77:34:1A:CE:DB:36:03:3E:F5:E9:99:2A:4D:24:68 X509v3 Authority Key Identifier: keyid:DC:C0:7A:9D:8F:FE:37:8D:DD:AF:3C:D0:E4:1A:9E:F6:FD:D3:14:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MB6nY_-N43drzzQ5Bqe9v3TFI8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/D3D1604C2B6711EC8CD1C61FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.164.0/23 Signature Algorithm: sha256WithRSAEncryption bf:a9:b8:7a:ae:ce:5f:98:08:89:78:48:da:f1:33:71:52:b8: 1b:a5:24:d7:16:0e:02:bb:96:16:b3:3f:c3:3c:af:ef:46:c5: d6:a1:dd:6f:b2:a8:8e:12:38:48:5f:16:94:d3:09:e7:6c:5c: b7:2e:54:4f:f2:7e:80:de:dc:5b:82:b5:2f:3b:ba:18:a2:52: 6b:64:60:a4:ad:84:25:93:2d:67:4f:09:58:36:93:85:83:b3: 1e:a9:74:b0:37:f1:6b:d8:7a:b2:bc:88:b3:24:97:74:e3:d0: b6:47:ba:af:59:27:0a:5d:2d:c9:7f:93:70:7d:1e:a3:08:4c: be:58:1d:61:4a:e5:3f:64:e8:f8:41:93:ed:b5:ba:40:bd:d9: 6c:d3:2e:2d:4b:06:ca:1f:78:66:5a:e6:37:3c:96:f9:a1:b4: cc:55:4a:91:71:f4:52:38:84:a2:14:72:0c:26:e9:6a:b0:c4: 95:66:18:27:a9:bc:48:19:44:7d:3f:26:3e:b8:46:3a:21:4d: 41:1b:b3:82:42:aa:0c:07:c2:f3:6f:e1:be:4e:20:94:7b:16: 72:83:74:74:b5:39:ef:77:26:79:c7:ea:cb:f7:6a:84:0c:2f: 1f:10:e8:ff:8f:2e:e8:86:4a:cc:09:d8:4f:33:25:ab:4b:22: 33:37:2f:98 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FGRTcxMTAvBgNVBAUTKERDQzA3QTlEOEZGRTM3OEREREFGM0NEMEU0MUE5RUY2 RkREMzE0OEYwHhcNMjQwMTEzMDE1MjQzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWExZWNlYi0yMzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQaayHzBjVTXklBeYNKHGBQ1uHJbwxjAPoLcOWnLqSgELHxTghGQjtfVIyiW 4vNomtT392wC75Va0FOUJoyY+5r7c71SoytQFnAG8lKnYX1FUeNDNS0oSe7nF+wq +L6CNPpQPxK9sNulmGhW55Q1WkEx3gsKVLUZQV0zkaGcZhtKt8yW5qVbqUUCGsDo N6hWFmR1utpTdAHS1BtaNbGXtyzZQCgpoelFfvf3xRvpMR8ZxK4DcWq19xkYBKdD gvyKqAx3hf6SQL50XjvKdMgIY8VyAE5I/zhwlwabdxvgYDJO2BPq8AOFz4Bx+StC 1M3t7BLRFzjXBRxfXmkHMGznBwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIdt87qB dzQazts2Az716ZkqTSRoMB8GA1UdIwQYMBaAFNzAep2P/jeN3a880OQanvb90xSP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUZFNy9GOEI2NTM3NDI5 MTIxMUVDODYzMUI4NTRDNEY5QUUwMi8zTUI2bllfLU40M2RyenpRNUJxZTl2M1RG STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNNQjZuWV8tTjQzZHJ6elE1QnFlOXYzVEZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0FGRTcvRjhCNjUzNzQyOTEyMTFFQzg2MzFCODU0QzRGOUFFMDIvRDNEMTYwNEMy QjY3MTFFQzhDRDFDNjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkaQwDQYJKoZIhvcNAQELBQADggEBAL+puHquzl+YCIl4 SNrxM3FSuBulJNcWDgK7lhazP8M8r+9Gxdah3W+yqI4SOEhfFpTTCedsXLcuVE/y foDe3FuCtS87uhiiUmtkYKSthCWTLWdPCVg2k4WDsx6pdLA38WvYerK8iLMkl3Tj 0LZHuq9ZJwpdLcl/k3B9HqMITL5YHWFK5T9k6PhBk+21ukC92WzTLi1LBsofeGZa 5jc8lvmhtMxVSpFx9FI4hKIUcgwm6WqwxJVmGCepvEgZRH0/Jj64RjohTUEbs4JC qgwHwvNv4b5OIJR7FnKDdHS1Oe93JnnH6sv3aoQMLx8Q6P+PLuiGSswJ2E8zJatL IjM3L5g= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:35 2024 by rpki-client on console-fra.rpki-client.org